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ADVERSARIES DON'T NEED MANY VULNERABILITES 
ONE IS ENOUGH 


Every 


36 minutes 


a new security vulnerability 
Is identified 


It takes an average of 


100 days 


until known security vulnerabilities 
are remediated** 


That is an average of* 


93 unique vulnerabilities 


per asset in the Financial industry 


13 unique vulnerabilities 


per asset in the Healthcare industry 


7 unique vulnerabilities 


per asset in the Technology industry 


That is an average of 


14, 600 known 


and disclosed vulnerabilities each 
Year* 


It takes 


1 5 days 


on average for a vulnerability to be 
Exploited** 
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Vulnerabilities management related challenges 


Recent ESG research on Cyber risk management, which involved 340 Cybersecurity 

professional shows; 

e 43% respondents indicate that their stat vulnerability 
management challenge is prioritizing which vulnerabilities to 
remediate. Sound familiar: 

e 42% mention that their vulnerability management challenge is 
tracking vulnerability and patching vulnerabilities in a timely manner 

e 41% of respondents indicate that their biggest vulnerability . 
management challenge is tracking the cost and effectiveness of their 
vulnerability management program 

e 40% of respondents indicate that their biggest vulnerability 


management challenge is keeping up with the volume of 
vulnerabilities 


Source : CSOonline.com © Qualys. 


Vulnerabilities management related challenges 
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CISO: How many windows hosts do we have? 
AV Guy: 7864 

Desktop Management: 6321 

EDR Team: 6722 

CMDB Team: 4848 

SIEM Team: 9342 
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Because someone has to clean up this mess 
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Industry and Regulatory requirements for VM 


e Compliance 

e Robust patching program 
e Protecting Crown Jewel 

e Prioritization of Threat 


e Effective Remediation 
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Why Intelligence based VM program ? 


ntelli ence based VM assist in timely identifying threats in your environment and hel 
ntsrove detece enone times. y P 


ection and mitigation response 
Cyber tf reat intel bined with risk] base d vulnerability remediation can significantly 
Uce the attack surface a ong wit teral movemen 
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Benefits of Intelligence based VM program; PATCH MANAGEMENT 


e Reduce effort to prioritize remediation 


e Targets only applicable vulnerabilities anal 


THREAT INTELLEGENCE © ae WEIN 


e Focus on Crown Jewel 


e Effective VM program SECURITY BASELINE 
CONFIGURATION 
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Security Orchestration, Automation and Response 


orchestration 
I 


Respond 


Prioritizing operations activities ° Automating workflows 


Formalizing triage and incident * Creating transparency and a common 
response business language 


Sources : Gartner © Qualys. 


Key Takeaways 


Identify your old enemies - 90% of Companies get attacked with three years old 
vulnerabilities 


Implement a vulnerability management program that includes discovery, prioritization 
and then treatment 


Continuously discover, monitor, assess and prioritize risk and trust — reactively and 
proactively 


Effective vulnerability management can significantly lower the cost of security 


Put continuous risk visibility, decisions and ownership to business units and platform 
owners 


Threat Intel and Risk based remediation 


Use analytics, Al, automation and orchestration to detect faster and risk-prioritize 
remediation 
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afzal.mohamed@nomura.com 


Disclaimer: Views expressed are my personal and not those held by my firm. 


